Page 1 of 2
Login Credentials- Addition/Modification
Posted: Thu Apr 23, 2015 8:18 am
by frank
Hi,
I am currently validating Netonix WSIP Switch, WS-12-250A. Two issues regarding login credentials.
1.How can I change the default login credentials ( admin/admin ) to
something else ?. I tried to change via Device Configuration web menu,
but when I tried to save the change, it thows "invalid fields" error.
2. How can I protect the Console port using login credentials ?. At the moment, it open to everyone.
- Frank
Re: Login Credentials- Addition/Modification
Posted: Thu Apr 23, 2015 9:02 am
by sirhc
We can look at possibly adding the option to v1.3.0 to change/add console username/password.
For now until the software is finalized the console port is un-secure.
However if your unit is in an un-secure location you are probably more more worried about someone just taking it I would think.
But even with our Cisco routers there is a procedure to quickly reset the password and gain access to the OS when you have physical access to the device.
Re: Login Credentials- Addition/Modification
Posted: Thu Apr 23, 2015 9:05 am
by frank
thanks for the reply. Securing the console port is a common feature for both Cisco and Juniper.
In the meantime, Is there any option available to disable the serial port ( if I want to keep the Netonix switch in a production network )?.
Re: Login Credentials- Addition/Modification
Posted: Thu Apr 23, 2015 9:07 am
by sirhc
Currently not but we can look at adding this to v1.3.0
Re: Login Credentials- Addition/Modification
Posted: Thu Apr 23, 2015 9:34 am
by sirhc
What version of firmware are you running Frank?
Re: Login Credentials- Addition/Modification
Posted: Thu Apr 23, 2015 12:09 pm
by lligetfa
frank wrote:Securing the console port is a common feature for both Cisco and Juniper...
The methodology varies and so too does password (or system) recovery. It can become a complex subject that pits convenience against security.
The general consensus is that security begins with physically securing the hardware. Anytime a perp can get access to network ports, the potential exists for them to intercept data and mine info. It obviously can get a little more complicated when the port also provides PoE. There are varying degrees of sensitive data that can be intercepted, some of which may be carried as clear text in the data.
That said, though I agree there should be the option for requiring creds to access data via the console port and separate creds for an addition "enable" level.
Re: Login Credentials- Addition/Modification
Posted: Thu Apr 23, 2015 1:06 pm
by sirhc
I feel it is a valid request and we will put it on the v1.3.0
firmware roadmap
Re: Login Credentials- Addition/Modification
Posted: Thu Apr 23, 2015 5:57 pm
by frank
Hi,
At present, I am using firmware version 1.1.5, but planning to upgrade v1.2 once the proper version is released ( I don't want to have my production network has candidate release).
Could you please tell me your release plan for v1.3 ?.
Cheers
Frank
Re: Login Credentials- Addition/Modification
Posted: Thu Apr 23, 2015 6:04 pm
by sirhc
frank wrote:Hi,
At present, I am using firmware version 1.1.5, but planning to upgrade v1.2 once the proper version is released ( I don't want to have my production network has candidate release).
Could you please tell me your release plan for v1.3 ?.
Cheers
Frank
OH GOD THAT FIRMWARE HAS MAJOR BUGS!!!!!!
Did you not get the warnings????
UPGRADE TO v1.1.8 or v1.2.0rc11
Go read the release notes on the firmware download page!!!!!!
Re: Login Credentials- Addition/Modification
Posted: Thu Apr 23, 2015 6:08 pm
by frank
ok. will do.
Thanks